Senior Software Security Engineer

Bedrijfsomschrijving

ASML is a Dutch high-tech company and one of the main suppliers of machines for the semiconductor industry, in particular steppers and scanners, which are used in chip making. Customers are often chip manufacturers. ASML's head office and business complex is in Veldhoven, where research and development and assembly take place in cleanrooms. The company also has sixty service points in fourteen countries to support the installation and delivery of machines and spare parts.

ASML was created from a joint venture between ASM International and Royal Philips. ASML delivers worldwide, but most of its customers are located in Asia. In 2011, 66% of sales were achieved in that region, 25% in the United States and just under 9% in Europe. The largest customer was responsible for a quarter of the total turnover. ASML's main supplier is Zeiss, a manufacturer of lenses and optical components. Zeiss's share in ASML's total purchasing costs is just under 30%. Due to the great mutual interests, both companies have entered into a strategic alliance; This can only be broken if one of the parties cancels three years in advance. ASML spends a lot of money on research and development.

Introduction to the job

The Greenhouse project implements a state-of-the art software development environment. This software development environment services a large community with over 4000 active developers. The software being developed in this environment is deployed to the ASML machines at the customer. This means you will be working on enabling the heartbeat of some the most advanced technologies on the planet. The project not only implements this environment but also drives migrations to the new capabilities. The full DevSecOps lifecycle must be supported and the Greenhouse environment is cloud-based and supports the highest security standards.

Role and responsibilities

You will be working cross-team as a senior software engineer investigating and resolving security related work packages. Deep knowledge of export controls, security, cloud and security controls are required. You are able to train and mentor teams and engineers working on these items. You design and review the deliverables of the teams. You take responsibility for the quality and timely delivery of the implemented solutions. You will also:

• Define, communicate and execute greenhouse security roadmap items according to plan and requirements.
• Coach and mentor teams / architects / engineers on cloud & security knowledge and application on the job.
• Create and review designs. Collaborate closely with teams on implementing designs.
• Prevent security and audit issues by contributing to designs and studies. (Secure by design)
• Take end-to-end ownership of security work packages from requirements to implementation

Education and experience

We look for a person with strong software development and IT background.

Next to it, we an expert knowledge on security, security development lifecycle, controls and design patterns. Next to it we look for:

• Experience in designing and implementing secure capabilities in an enterprise or hybrid cloud environment. (such as IAM)
• Experience in embedded software development environments using C/C++/Python and RHEL is a plus. Experience with Software Development at ASML is a plus.
• Experience with designing, implementing and migrating secure developer services (Workplace, Build, CICD, SCM systems etc.) is a must.
• Experience with implementing Bazel, GitHub ES, GitHub Actions, GCP is a big plus.

Education

Software Engineering

Assignment duration: 36 months

Working from home: Partially, min 4 days in the office

Department: D&E SW ARCH C DevEnv

Dutch needed: No